?

RSPN技術 SPAN技術主要是用來監控交換機上的數據流，大體分為兩種類型，本地SPAN和遠程SPAN. ----Local Switched Port Analyzer (SPAN) and Remote SPAN (RSPAN)，實現方法上稍有不同。 利用SPAN技術我們可以把交換機上某些想要被監控端口（以下簡稱受控端口）的數據流COPY或MIRROR一 份，發送給連接在監控端口上的流量分析儀，比如CISCO的IDS或是裝了SNIFFER工具的PC. 受控端口和 監控端口可以在同一臺交換機上（本地SPAN），也可以在不同的交換機上（遠程SPAN）。 實驗器材：兩臺華為s2000hi交換機，一臺s2000ei交換機，一臺路由器，一臺pc機，一臺虛擬機做ndis服務器

配置sw1： [sw1]vlan 10 [sw1-vlan10]remote-probe vlan enable [sw1-vlan10]inter eth1/0/1 [sw1-Ethernet1/0/1]port link-type trunk [sw1-Ethernet1/0/1]port trunk permit vlan 10 Please wait... Done. [sw1-Ethernet1/0/1]quit [sw1]mirro? mirroring-group [sw1]mirroring-group 1 remote-destination [sw1]mirroring-group 1 monitor-port eth1/0/2 [sw1]mirroring-group 1 remote-probe vlan 10 配置sw2： [sw2]vlan 10 [sw2]inter e0/1 [sw2-Ethernet0/1]port link-type trunk [sw2-Ethernet0/1]port trunk permit vlan 10 Please wait... Done. [sw2-Ethernet0/1]inter e0/2 [sw2-Ethernet0/2]port link-type trunk [sw2-Ethernet0/2]port trunk permit vlan 10 Please wait... Done. 配置sw3： [sw3]vlan 10 [sw3-vlan10]remote-probe vlan enable [sw3-vlan10]inter eth1/0/2 [sw3-Ethernet1/0/2]port link-type trunk [sw3-Ethernet1/0/2]port trunk permit vlan 10 Please wait... Done. [sw3-Ethernet1/0/2]mirroring-group 1 remote-source [sw3]mirroring-group 1 mirroring-port eth1/0/10 ? Ethernet?Ethernet interface bothMonitor the inbound and outbound packets inboundMonitor the inbound packets outbound?Monitor the outbound packets toRange of interfaces [sw3]mirroring-group 1 mirroring-port eth1/0/10 eth1/0/20 both The remote source mirroring group doesn't support mirroring port of both direction! [sw3]mirroring-group 1 mirroring-port eth1/0/10 both The remote source mirroring group doesn't support mirroring port of both direction! [sw3]mirroring-group 1 mirroring-port eth1/0/10 eth1/0/20 inbound [sw3]mirroring-group 1 reflector-port eth1/0/5 [sw3]mirroring-group 1 remote-probe vlan 10 [sw3]dis mirroring-group remote-source mirroring-group 1: type: remote-source status: active mirroring port: Ethernet1/0/10?inbound Ethernet1/0/20?inbound reflector port: Ethernet1/0/5 remote-probe vlan: 10 [sw3] 配置路由器： [r10]inter e0 [r10-Ethernet0]ip address 192.168.1.2 24 [r10-Ethernet0] [r10-Ethernet0] [r10-Ethernet0] [r10-Ethernet0] [r10-Ethernet0] [r10-Ethernet0]quit [r10] [r10] [r10] [r10]local-user user1 password sim 123 ser admin 測試： 用pc2（192.168.1.3）telnetpc1（192.168.1.2） 用sniffer抓包：

?

轉載于:https://blog.51cto.com/liufan0321/1080048

總結

以上是生活随笔為你收集整理的RSPN技术华为交换机（s2000hi）的全部內容，希望文章能夠幫你解決所遇到的問題。

如果覺得生活随笔網站內容還不錯，歡迎將生活随笔推薦給好友。